$ rpki-client -vvf rpki.apnic.net/member_repository/A9179F22/CF9BF5FE8F2F11EE9CBFD961C4F9AE02/_PdT00aqq5WrFMYmdRXN8T-A-7s.mft File: _PdT00aqq5WrFMYmdRXN8T-A-7s.mft (raw, json) Hash identifier: 2816DrulBSNeUShywQ7dafnDdoWECkeD2Ynna04E3H0= Subject key identifier: F1:B3:81:6B:21:40:BB:E3:5D:0D:A9:F2:17:9B:08:87:6E:3F:63:A9 Authority key identifier: FC:F7:53:D3:46:AA:AB:95:AB:14:C6:26:75:15:CD:F1:3F:80:FB:BB Certificate issuer: /CN=A9179F22/serialNumber=FCF753D346AAAB95AB14C6267515CDF13F80FBBB Certificate serial: 0135 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_PdT00aqq5WrFMYmdRXN8T-A-7s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179F22/CF9BF5FE8F2F11EE9CBFD961C4F9AE02/_PdT00aqq5WrFMYmdRXN8T-A-7s.mft Manifest number: 0129 Signing time: Sun 15 Jun 2025 03:53:23 +0000 Manifest this update: Sun 15 Jun 2025 03:53:22 +0000 Manifest next update: Sun 22 Jun 2025 03:53:22 +0000 Files and hashes: 1: _PdT00aqq5WrFMYmdRXN8T-A-7s.crl (hash: lF/cgFUFMSK2hW6BWQUv4wgMOWdI+0FUAiv0D1VM29A=) 2: 4120F6A28F3011EEA61ACF62C4F9AE02.roa (hash: OCepXKtPM8Ugq1ZnTOeqLJrMwE6SWX8J/dtz+Y3O35w=) 3: 41969D1C8F3011EEA61ACF62C4F9AE02.roa (hash: mRLPSGz3fDg54l8MXzyosEq3sw4/imNOjGKPzEwZfwU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179F22/CF9BF5FE8F2F11EE9CBFD961C4F9AE02/_PdT00aqq5WrFMYmdRXN8T-A-7s.crl rsync://rpki.apnic.net/member_repository/A9179F22/CF9BF5FE8F2F11EE9CBFD961C4F9AE02/_PdT00aqq5WrFMYmdRXN8T-A-7s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_PdT00aqq5WrFMYmdRXN8T-A-7s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 309 (0x135) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179F22, serialNumber=FCF753D346AAAB95AB14C6267515CDF13F80FBBB Validity Not Before: Jun 15 03:53:22 2025 GMT Not After : Jun 22 03:53:22 2025 GMT Subject: CN=684e43b2-3e19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:3e:5a:95:19:48:c0:45:ba:36:ef:ac:4a:9f: 9b:83:1a:27:46:e3:7a:a3:6b:ab:84:dc:b9:9f:e3: 79:69:d4:4c:f7:90:e9:2f:d6:0d:f1:5c:e0:b1:d6: dd:89:c5:b7:60:3a:62:4a:fa:df:d0:be:ab:78:21: 32:b4:7f:27:fd:a8:95:fc:a5:e5:3f:df:d8:28:18: 06:f0:62:1e:54:4a:1a:3d:63:44:30:a7:3f:62:09: 71:2b:9a:46:65:31:bb:50:f5:6d:b5:62:70:6b:44: 31:55:6d:88:55:2d:d4:08:dc:fb:4f:2d:b6:37:09: b8:f9:83:1f:23:3a:63:e8:24:c2:2d:8e:32:6b:7f: 8c:9b:b0:22:64:96:92:dc:c2:06:5b:97:bb:d8:ff: ea:52:4a:5b:92:71:a2:4b:bf:37:e0:10:0a:3e:f0: 6e:f5:30:03:e7:0c:5c:7d:05:e7:c3:25:71:4c:3e: 75:38:f2:39:c1:09:23:11:89:08:47:32:e5:bd:ea: 14:e7:47:f1:f6:3f:c7:92:42:8c:97:fc:8b:60:2d: 0e:53:b3:e2:32:46:88:cc:31:ce:e3:34:96:00:3a: 2e:cc:27:74:f4:8d:69:23:29:24:26:8a:f1:bf:be: e6:17:09:22:75:0c:83:48:73:fe:77:8a:24:1d:e8: 79:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:B3:81:6B:21:40:BB:E3:5D:0D:A9:F2:17:9B:08:87:6E:3F:63:A9 X509v3 Authority Key Identifier: keyid:FC:F7:53:D3:46:AA:AB:95:AB:14:C6:26:75:15:CD:F1:3F:80:FB:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179F22/CF9BF5FE8F2F11EE9CBFD961C4F9AE02/_PdT00aqq5WrFMYmdRXN8T-A-7s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_PdT00aqq5WrFMYmdRXN8T-A-7s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179F22/CF9BF5FE8F2F11EE9CBFD961C4F9AE02/_PdT00aqq5WrFMYmdRXN8T-A-7s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:89:de:30:eb:3a:40:d4:93:e2:4a:d2:e8:b6:63:01:a4:f6: cc:44:c4:3a:72:a0:d9:23:28:21:fc:72:e9:02:26:c5:d3:d8: 9a:c8:1e:b0:d7:1a:c0:e7:7a:3a:69:e7:50:68:a8:04:51:fa: 0a:c7:5d:7e:6f:98:04:c6:36:68:92:0f:46:09:b6:8b:9c:e2: 4f:22:86:60:bf:ef:f2:ad:ac:08:23:bf:ef:04:b3:75:ea:85: 9a:a6:6a:42:9b:d5:48:53:c3:d2:72:0e:df:d4:32:e6:aa:b5: 80:eb:40:bc:d4:69:c1:63:76:6e:c8:f2:fe:c4:92:1d:b2:43: 27:da:1a:fd:4c:89:0c:58:7f:79:be:51:98:1d:ff:38:ae:8f: a3:78:f4:b0:e5:40:0e:af:a2:9e:da:c5:51:cf:e3:d6:01:a1: f5:48:e5:83:67:eb:1d:2a:3c:95:1d:8b:13:0d:c1:0b:f3:21: df:96:b8:4e:80:22:b2:11:38:19:1e:cf:d1:7b:35:1f:59:05: e5:0e:52:40:c7:7a:76:ef:f3:78:8c:ba:84:29:a4:aa:3b:e7: 97:59:ab:63:dc:b4:c8:f4:fc:2f:97:8f:55:45:df:d1:bf:5b: bf:54:3d:d3:cf:1f:34:11:21:cb:d5:53:e5:ef:7a:08:e6:9a: 53:ca:f0:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzlGMjIxMTAvBgNVBAUTKEZDRjc1M0QzNDZBQUFCOTVBQjE0QzYyNjc1MTVDREYx M0Y4MEZCQkIwHhcNMjUwNjE1MDM1MzIyWhcNMjUwNjIyMDM1MzIyWjAYMRYwFAYD VQQDEw02ODRlNDNiMi0zZTE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtT5alRlIwEW6Nu+sSp+bgxonRuN6o2urhNy5n+N5adRM95DpL9YN8Vzgsdbd icW3YDpiSvrf0L6reCEytH8n/aiV/KXlP9/YKBgG8GIeVEoaPWNEMKc/YglxK5pG ZTG7UPVttWJwa0QxVW2IVS3UCNz7Ty22Nwm4+YMfIzpj6CTCLY4ya3+Mm7AiZJaS 3MIGW5e72P/qUkpbknGiS7834BAKPvBu9TAD5wxcfQXnwyVxTD51OPI5wQkjEYkI RzLlveoU50fx9j/HkkKMl/yLYC0OU7PiMkaIzDHO4zSWADouzCd09I1pIykkJorx v77mFwkidQyDSHP+d4okHeh52wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPGzgWsh QLvjXQ2p8hebCIduP2OpMB8GA1UdIwQYMBaAFPz3U9NGqquVqxTGJnUVzfE/gPu7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OUYyMi9DRjlCRjVGRThG MkYxMUVFOUNCRkQ5NjFDNEY5QUUwMi9fUGRUMDBhcXE1V3JGTVltZFJYTjhULUEt N3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19QZFQwMGFxcTVXckZNWW1kUlhOOFQtQS03cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OUYyMi9DRjlCRjVGRThGMkYxMUVFOUNCRkQ5NjFDNEY5QUUwMi9fUGRUMDBhcXE1 V3JGTVltZFJYTjhULUEtN3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6id4w6zpA1JPiStLotmMBpPbMRMQ6cqDZIygh/HLpAibF09iayB6w 1xrA53o6aedQaKgEUfoKx11+b5gExjZokg9GCbaLnOJPIoZgv+/yrawII7/vBLN1 6oWapmpCm9VIU8PScg7f1DLmqrWA60C81GnBY3ZuyPL+xJIdskMn2hr9TIkMWH95 vlGYHf84ro+jePSw5UAOr6Ke2sVRz+PWAaH1SOWDZ+sdKjyVHYsTDcEL8yHflrhO gCKyETgZHs/RezUfWQXlDlJAx3p27/N4jLqEKaSqO+eXWatj3LTI9Pwvl49VRd/R v1u/VD3Tzx80ESHL1VPl73oI5ppTyvC8 -----END CERTIFICATE-----Generated at Sun Jun 15 09:37:41 2025 by rpki-client